LATEST SCAM: Email Phishers Are Targeting Office 365 Accounts

LATEST SCAM: Email Phishers Are Targeting Office 365 Accounts

Warning: New Scam Out Targeting Office 365 Users

A recent Office 365 phishing attack is using SharePoint links to target Office 365 accounts. The attack leveraged against 10% of Office 365 customers.

How Does The Scam Work?

An Office 365 user receives an email- which looks like it came from Microsoft- containing a hyperlink. Once the user clicks the hyperlink in the email, the browser automatically opens a SharePoint file. The content of the SharePoint file impersonates a standard access request to the user’s OneDrive, but the file is actually hyperlinked to a malicious URL. The URL then redirects users to a spoofed Office 365 login screen, asking for the login credentials, which are then stolen by hackers.

How Did This Happen?

Microsoft scans the body of an email, including the links provided in it, however since the links lead to an actual SharePoint document, the scam wasn’t initially detected.

How Can I Protect Myself?

Always be suspicious of URLs in an email body if the subject line includes URGENT or ACTION REQUIRED, even if you are receiving emails that appear safe.

When presented with a login page, it is recommended to always check the address bar in your web browser to ensure the URL is legitimate.
Always utilize two-factor authentication, so even if attackers gain access to your password, they still need to struggle for the second authentication step.

Have I Been Affected?

If you believe your credentials have been compromised, contact OnPar Technologies for a free dark web scan. Our Dark Web ID Monitoring consistently monitors and detects credentials in real-time and notifies you immediately when your critical assets have been compromised. For more information or to start you free scan go to: www.onpartech.com/dark-web/

In addition, ATP anti-phishing protection, part of Office 365’s advanced threat protection, can help protect your organization from malicious impersonation-based phishing attacks and other phishing attacks. If you aren’t currently using Office 365 or want to know how to setup Advanced Threat Protection for your business go to: www.onpartech.com/office-365/